Forget Oracle's Latest Java Patch. Just Kill The Program In Your Browser For Good

After months of inaction and even a warning from the Department of Homeland Security, Oracle has finally released a fix for yet another security vulnerability in its ubiquitous and notoriously buggy Java software. But there’s already been a fix available that’s remain simpler and far more effective: Kick your Java habit altogether.

[snip]

Russian security firm Kaspersky reported in its third quarter analysis of security threats that Java was exploited in fully 56% of all known attacks that took advantage of vulnerabilities in software. And last summer, a Java vulnerability was used by the Flashback malware to create the first known large-scale botnet of Macs, which numbered more than 600,000 at its peak.